Количество 4
Количество 4
CVE-2014-0074
Apache Shiro 1.x before 1.2.3, when using an LDAP server with unauthenticated bind enabled, allows remote attackers to bypass authentication via an empty (1) username or (2) password.
CVE-2014-0074
Apache Shiro 1.x before 1.2.3, when using an LDAP server with unauthenticated bind enabled, allows remote attackers to bypass authentication via an empty (1) username or (2) password.
CVE-2014-0074
Apache Shiro 1.x before 1.2.3, when using an LDAP server with unauthen ...
GHSA-9486-j794-vqc4
Apache Shiro 1.x before 1.2.3, when using an LDAP server with unauthenticated bind enabled, allows remote attackers to bypass authentication via an empty (1) username or (2) password.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2014-0074 Apache Shiro 1.x before 1.2.3, when using an LDAP server with unauthenticated bind enabled, allows remote attackers to bypass authentication via an empty (1) username or (2) password. | CVSS2: 7.5 | 0% Низкий | почти 12 лет назад |
 | CVE-2014-0074 Apache Shiro 1.x before 1.2.3, when using an LDAP server with unauthenticated bind enabled, allows remote attackers to bypass authentication via an empty (1) username or (2) password. | CVSS2: 7.5 | 0% Низкий | больше 11 лет назад |
| CVE-2014-0074 Apache Shiro 1.x before 1.2.3, when using an LDAP server with unauthen ... | CVSS2: 7.5 | 0% Низкий | больше 11 лет назад |
| GHSA-9486-j794-vqc4 Apache Shiro 1.x before 1.2.3, when using an LDAP server with unauthenticated bind enabled, allows remote attackers to bypass authentication via an empty (1) username or (2) password. | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу